CVE Vulnerabilities

CVE-2004-1848

Published: Dec 31, 2004 | Modified: Oct 11, 2023
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:N/I:N/A:P
RedHat/V2
RedHat/V3
Ubuntu

Ipswitch WS_FTP Server 4.0.2 allows remote attackers to cause a denial of service (disk consumption) and bypass file size restrictions via a REST command with a large size argument, followed by a STOR of a smaller file.

Affected Software

Name Vendor Start Version End Version
Ws_ftp_server Ipswitch 3.0_1 (including) 3.0_1 (including)
Ws_ftp_server Ipswitch 4.01 (including) 4.01 (including)
Ws_ftp_server Progress 1.0.1 (including) 1.0.1 (including)
Ws_ftp_server Progress 1.0.2 (including) 1.0.2 (including)
Ws_ftp_server Progress 1.0.3 (including) 1.0.3 (including)
Ws_ftp_server Progress 1.0.4 (including) 1.0.4 (including)
Ws_ftp_server Progress 1.0.5 (including) 1.0.5 (including)
Ws_ftp_server Progress 2.0 (including) 2.0 (including)
Ws_ftp_server Progress 2.0.1 (including) 2.0.1 (including)
Ws_ftp_server Progress 2.0.2 (including) 2.0.2 (including)
Ws_ftp_server Progress 2.0.3 (including) 2.0.3 (including)
Ws_ftp_server Progress 2.0.4 (including) 2.0.4 (including)
Ws_ftp_server Progress 3.0 (including) 3.0 (including)
Ws_ftp_server Progress 3.1 (including) 3.1 (including)
Ws_ftp_server Progress 3.1.1 (including) 3.1.1 (including)
Ws_ftp_server Progress 3.1.2 (including) 3.1.2 (including)
Ws_ftp_server Progress 3.1.3 (including) 3.1.3 (including)
Ws_ftp_server Progress 3.4 (including) 3.4 (including)
Ws_ftp_server Progress 4.0 (including) 4.0 (including)
Ws_ftp_server Progress 4.0.2 (including) 4.0.2 (including)

References